Lucene search
+L

9 matches found

osv
osv
added 2026/06/26 1:42 a.m.12 views

MAL-2026-6495 Malicious code in animatecss-postcss-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6be12cec08d0999c157774b746c3e431825ae61635bb8ddddf36061d4602cec7 [email protected] ships a tiny PostCSS plugin factory whose body contains an obfuscator.io-style string-array + RC4 decoder functions...

5.9AI score
Exploits0References3
ossf
ossf
added 2026/06/26 1:42 a.m.12 views

Malicious code in animatecss-postcss-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6be12cec08d0999c157774b746c3e431825ae61635bb8ddddf36061d4602cec7 [email protected] ships a tiny PostCSS plugin factory whose body contains an obfuscator.io-style string-array + RC4 decoder functions...

5.9AI score
Exploits0References3
ossf
ossf
added 2026/06/17 4:26 a.m.10 views

Malicious code in gpu-accelerator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab0d6b253674f5eef505fbffb76003d2071569fd9d8abdf8993197738bb27759 The package advertises itself as a PostCSS plugin for CSS hardware-acceleration hints, but its only legitimate behavior is a 3-line walkDecls that ad...

6.2AI score
Exploits0References7
osv
osv
added 2026/06/17 4:26 a.m.17 views

MAL-2026-5980 Malicious code in gpu-accelerator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab0d6b253674f5eef505fbffb76003d2071569fd9d8abdf8993197738bb27759 The package advertises itself as a PostCSS plugin for CSS hardware-acceleration hints, but its only legitimate behavior is a 3-line walkDecls that ad...

6.2AI score
Exploits0References7
ossf
ossf
added 2026/06/15 8:17 p.m.22 views

Malicious code in postcss-minify-selector (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1bc7341d6762a6209e4bde3d99f31f1a8650b6971e64a19547b9f35e7a51abb3 Package is published as postcss-minify-selector singular but its internal postcss plugin identifier is postcss-minify-selectors plural — the canonica...

5.8AI score
Exploits0References13
ossf
ossf
added 2026/05/20 12:24 a.m.14 views

Malicious code in @tailwind-core/postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dab944715339b0fabcf954a92fd33faacbb4d878368c36ea5a7d26d72fe2e56 Package name @tailwind-core/postcss is a one-character-class edit of the official @tailwindcss/postcss Tailwind CSS v4 PostCSS plugin, published unde...

5.9AI score
Exploits0References1
euvd
euvd
added 2025/11/13 3:23 a.m.8 views

EUVD-2025-177089

Malicious code in postcss-proxima-eris-restart npm...

6.6AI score
Exploits0
osv
osv
added 2025/11/13 3:23 a.m.6 views

MAL-2025-188777 Malicious code in postcss-html-webpack-plugin-enif-ultra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed318452e4290638abbef91f54d51d2d2f0ecfc9073c4d399951524680acd6f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
euvd
euvd
added 2025/11/13 3:23 a.m.8 views

EUVD-2025-177098

Malicious code in postcss-html-webpack-plugin-enif-ultra npm...

6.6AI score
Exploits0
Rows per page
Query Builder